CVE - CVE-2012-1172

CVE-ID
CVE-2012-1172	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid [ (open square bracket) characters in name values, which makes it easier for remote attackers to cause a denial of service (malformed $_FILES indexes) or conduct directory traversal attacks during multi-file uploads by leveraging a script that lacks its own filename restrictions.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MLIST:[oss-security] 20120313 Re: CVE request for PHP 5.3.x Corrupted $_FILES indices lead to security concern URL:http://openwall.com/lists/oss-security/2012/03/13/4 MISC:http://isisblogs.poly.edu/2011/08/11/php-not-properly-checking-params/ MISC:https://bugs.php.net/bug.php?id=48597 MISC:https://bugs.php.net/bug.php?id=49683 MISC:https://nealpoole.com/blog/2011/10/directory-traversal-via-php-multi-file-uploads/ MISC:https://students.mimuw.edu.pl/~ai292615/php_multipleupload_overwrite.pdf CONFIRM:http://svn.php.net/viewvc/php/php-src/branches/PHP_5_4/main/rfc1867.c?r1=321664&r2=321663&pathrev=321664 CONFIRM:http://svn.php.net/viewvc?view=revision&revision=321664 CONFIRM:http://www.php.net/ChangeLog-5.php#5.4.0 CONFIRM:https://bugs.php.net/bug.php?id=54374 CONFIRM:https://bugs.php.net/bug.php?id=55500 CONFIRM:http://support.apple.com/kb/HT5501 APPLE:APPLE-SA-2012-09-19-2 URL:http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html DEBIAN:DSA-2465 URL:http://www.debian.org/security/2012/dsa-2465 FEDORA:FEDORA-2012-6869 URL:http://lists.fedoraproject.org/pipermail/package-announce/2012-May/080070.html FEDORA:FEDORA-2012-6907 URL:http://lists.fedoraproject.org/pipermail/package-announce/2012-May/080041.html FEDORA:FEDORA-2012-6911 URL:http://lists.fedoraproject.org/pipermail/package-announce/2012-May/080037.html HP:HPSBUX02791 URL:http://marc.info/?l=bugtraq&m=134012830914727&w=2 HP:SSRT100856 URL:http://marc.info/?l=bugtraq&m=134012830914727&w=2 SUSE:SUSE-SU-2012:0598 URL:http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00007.html SUSE:SUSE-SU-2012:0604 URL:http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00011.html
Assigning CNA
N/A
Date Entry Created
20120214	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20120214)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org